CVE-2021-23401

Опубликовано: 05 июл. 2021

Источник: nvd

CVSS3: 5.4

CVSS3: 6.1

CVSS2: 5.8

EPSS Низкий

Описание

This affects all versions of package Flask-User. When using the make_safe_url function, it is possible to bypass URL validation and redirect a user to an arbitrary URL by providing multiple back slashes such as /////evil.com/path or \\evil.com/path. This vulnerability is only exploitable if an alternative WSGI server other than Werkzeug is used, or the default behaviour of Werkzeug is modified using 'autocorrect_location_header=False.

Ссылки

https://github.com/lingthio/Flask-User
Product
Third Party Advisory
https://github.com/lingthio/Flask-User/blob/master/flask_user/user_manager__utils.py
Exploit
Third Party Advisory
https://snyk.io/vuln/SNYK-PYTHON-FLASKUSER-1293188
Third Party Advisory
https://github.com/lingthio/Flask-User
Product
Third Party Advisory
https://github.com/lingthio/Flask-User/blob/master/flask_user/user_manager__utils.py
Exploit
Third Party Advisory
https://snyk.io/vuln/SNYK-PYTHON-FLASKUSER-1293188
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:flask-user_project:flask-user:*:*:*:*:*:*:*:*

EPSS

Процентиль: 50%

0.00265

Низкий

5.4 Medium

CVSS3

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-601

Связанные уязвимости

GHSA-4298-89hc-6rfv

CVSS3: 5.4

github

больше 4 лет назад

Open Redirect in Flask-User

EPSS

Процентиль: 50%

0.00265

Низкий

5.4 Medium

CVSS3

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-601